$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft File: 41820333252DF92B1DBA238F558CC8D822C768EF.mft (raw, json) Hash identifier: Dzom4vLSOe9050wbBSEy0Hs4VWKmlVui3o6WshCMwjo= Subject key identifier: 83:05:36:30:01:A1:98:00:E0:3B:E2:E8:37:C3:32:8D:3F:C8:D7:B3 Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 54DCFD5917BEF74732D60D8AE90A7008574A7123 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft Manifest number: 0199 Signing time: Fri 22 Aug 2025 15:21:11 +0000 Manifest this update: Fri 22 Aug 2025 15:16:11 +0000 Manifest next update: Mon 25 Aug 2025 18:15:11 +0000 Files and hashes: 1: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (hash: Y9d4RL5lwPJKIYYz/S5GmByBdyf8v8c66+665Lm4cNc=) 2: 3130332e36392e36312e302f32342d3234203d3e20313530353239.roa (hash: eG3L50RlSnDUuOVwkVlYnQebEQc3JXkDObYN4u0w6z8=) 3: 41820333252DF92B1DBA238F558CC8D822C768EF.crl (hash: fCcMqxQCXe7ON75kwA9eNFJtHaZHZnsTZjFByRjtNwA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:dc:fd:59:17:be:f7:47:32:d6:0d:8a:e9:0a:70:08:57:4a:71:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Aug 22 15:16:11 2025 GMT Not After : Aug 25 18:15:11 2025 GMT Subject: CN=8305363001A19800E03BE2E837C3328D3FC8D7B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:70:04:1c:a2:66:90:ff:8e:d0:57:c3:31:c5: a2:21:21:4a:cc:d6:73:c9:3c:72:e9:3c:fd:c7:18: fb:56:68:52:c5:c1:1b:5a:e5:66:13:a8:36:46:53: a7:fc:cb:9f:12:9a:aa:dc:29:e6:c3:d1:93:78:38: 44:72:4d:c1:a4:2a:a2:b8:5f:18:26:fd:0e:f6:97: 6d:6c:cc:e0:e2:d9:62:51:f5:55:b5:f1:b0:69:34: fc:c4:47:63:74:9f:30:a8:15:ec:94:ba:64:02:2a: 23:fe:a4:64:3a:23:97:a5:9f:17:e4:c5:0b:2b:eb: e7:32:3c:e2:06:99:1a:9c:67:04:5e:58:42:94:ff: 29:f6:9a:2e:a6:34:1e:0b:5e:b7:74:bc:4c:c3:6c: 58:33:18:d1:4c:3b:96:10:a5:1e:99:6a:28:9d:24: 43:b5:71:c3:d4:26:5f:b9:c3:6b:bd:1a:3c:89:7d: ef:91:c0:74:50:c6:e3:6e:ca:89:30:7b:07:1c:a5: b8:5c:09:ed:7b:8f:86:45:42:50:a5:af:56:0f:d6: e2:8a:a9:aa:02:53:6d:6d:39:76:ab:45:cc:e5:f0: d3:bf:9e:96:00:a4:74:67:b9:ba:48:9d:96:b4:97: 99:2c:36:0b:c1:e0:ed:ce:9d:5b:2d:ff:57:80:c4: 94:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:05:36:30:01:A1:98:00:E0:3B:E2:E8:37:C3:32:8D:3F:C8:D7:B3 X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:8c:5f:9b:a3:cf:c2:49:b0:bf:f5:1b:8d:c6:59:e8:3d:f8: 9b:b8:41:86:9c:95:76:5a:24:77:c8:d5:86:ca:b3:8a:f2:b1: 76:10:30:99:99:31:95:1a:dc:15:d5:e1:1b:87:05:35:3d:f3: 2a:53:8c:8f:65:3a:21:5c:af:cb:cb:1e:4c:17:1f:2b:26:1f: 1c:b7:31:d8:4a:6f:db:45:03:19:90:cc:da:d2:af:e7:c5:13: 0f:87:d7:85:68:dc:1f:1a:93:55:21:eb:78:35:cc:21:91:f9: 67:77:fd:be:2f:27:94:54:23:1a:e6:00:15:ae:f6:dc:6b:06: e4:ec:36:ad:d5:ad:06:ea:81:0b:28:89:3c:8b:fc:24:e3:21: de:2f:2c:23:c2:cf:0e:d4:dc:ae:dd:65:c0:a1:3b:b2:7c:ff: eb:8a:49:3f:04:12:b8:c4:3d:fa:50:be:91:1b:71:74:e6:3c: 4c:96:27:91:b3:66:4e:c1:b7:63:34:df:df:67:2c:f3:bc:3c: 8d:60:13:1b:cd:3b:ed:80:0a:03:7a:80:4d:dd:31:5a:a9:23: 4d:a6:d4:e5:32:45:0f:a2:35:67:74:65:19:bc:82:33:b0:b8: b9:88:48:ad:d5:84:69:eb:29:8f:c2:9e:b8:e7:89:5b:62:cd: 70:dd:c6:92 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVNz9WRe+90cy1g2K6QpwCFdKcSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNTA4MjIxNTE2MTFaFw0yNTA4MjUxODE1MTFaMDMxMTAvBgNV BAMTKDgzMDUzNjMwMDFBMTk4MDBFMDNCRTJFODM3QzMzMjhEM0ZDOEQ3QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCscAQcomaQ/47QV8MxxaIhIUrM 1nPJPHLpPP3HGPtWaFLFwRta5WYTqDZGU6f8y58SmqrcKebD0ZN4OERyTcGkKqK4 Xxgm/Q72l21szODi2WJR9VW18bBpNPzER2N0nzCoFeyUumQCKiP+pGQ6I5elnxfk xQsr6+cyPOIGmRqcZwReWEKU/yn2mi6mNB4LXrd0vEzDbFgzGNFMO5YQpR6Zaiid JEO1ccPUJl+5w2u9GjyJfe+RwHRQxuNuyokwewccpbhcCe17j4ZFQlClr1YP1uKK qaoCU21tOXarRczl8NO/npYApHRnubpInZa0l5ksNgvB4O3OnVst/1eAxJS5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgwU2MAGhmADgO+LoN8MyjT/I17MwHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODU5NzFhZTktNWNkZC00ZDQxLWI2 MmEtNWMyODRhYTgwOThlLzAvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4 RDgyMkM3NjhFRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH+MX5ujz8JJsL/1G43GWeg9+Ju4QYaclXZa JHfI1YbKs4rysXYQMJmZMZUa3BXV4RuHBTU98ypTjI9lOiFcr8vLHkwXHysmHxy3 MdhKb9tFAxmQzNrSr+fFEw+H14Vo3B8ak1Uh63g1zCGR+Wd3/b4vJ5RUIxrmABWu 9txrBuTsNq3VrQbqgQsoiTyL/CTjId4vLCPCzw7U3K7dZcChO7J8/+uKST8EErjE PfpQvpEbcXTmPEyWJ5GzZk7Bt2M0399nLPO8PI1gExvNO+2ACgN6gE3dMVqpI02m 1OUyRQ+iNWd0ZRm8gjOwuLmISK3VhGnrKY/CnrjniVtizXDdxpI= -----END CERTIFICATE-----Generated at Sat Aug 23 12:38:43 2025 by rpki-client